$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/854367ff-45b7-4925-99a1-97b01f4fabe8.roa File: 854367ff-45b7-4925-99a1-97b01f4fabe8.roa (raw, json) Hash identifier: ZejZSl/M50V9rGQSTPXqWOG2+PfLU/72Bm4qCgOxbJI= Subject key identifier: 60:5E:0C:BC:58:0D:3D:D5:9D:D6:88:32:CC:E1:9A:E3:72:01:CB:86 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 196697513C5AC566A33F3B9FBBE2498139E4673B Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/854367ff-45b7-4925-99a1-97b01f4fabe8.roa Signing time: Fri 30 May 2025 00:00:06 +0000 ROA not before: Fri 30 May 2025 00:00:06 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 8987 IP address blocks: 216.221.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:66:97:51:3c:5a:c5:66:a3:3f:3b:9f:bb:e2:49:81:39:e4:67:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 30 00:00:06 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=5df318fd55ac2d0b74f1bf843b2673e185c3b729df3bc7d8eda655c16a4a007c, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e4:e6:f7:88:78:9e:15:38:60:ed:f5:df:cf: 21:4c:92:27:f6:73:5a:ca:6e:fe:e2:f2:d8:4e:05: e2:9e:8c:31:a5:18:5d:2d:37:e1:94:12:fb:6c:df: d1:cc:ca:90:d2:22:6f:8d:a2:91:4c:9b:d9:bb:27: 73:50:27:d3:a5:21:97:81:71:51:0b:55:5e:25:e5: 24:74:af:9b:a9:cb:0c:99:d5:bc:3c:9c:30:49:99: 70:46:9e:f4:9e:2f:eb:83:9d:25:fb:e0:89:1d:c0: d9:2c:dd:03:8e:41:b5:45:13:e6:4c:62:3c:67:45: 1a:e1:96:e7:29:5e:48:38:ce:a3:b6:15:8e:b9:26: ef:e5:86:4e:59:c8:a1:b4:a0:ac:6d:ed:44:ab:cc: 9a:c1:9b:78:cf:f5:13:10:b3:e4:1b:31:e9:9f:7c: 95:c2:32:49:61:bc:8e:3f:b0:0c:19:8b:6f:a7:75: d0:89:6f:29:6c:51:de:26:76:1a:71:78:1c:d3:e6: 13:f1:e6:75:0f:4a:b6:a0:87:ca:03:7f:6a:73:3a: fb:79:2f:8f:33:e0:04:af:e4:62:01:1e:5f:6f:26: 2d:b2:33:17:b3:1a:9d:4c:50:ad:d1:2e:47:d4:b8: b9:71:5b:32:0d:26:6c:9e:6b:5a:71:32:68:5c:c2: 75:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:5E:0C:BC:58:0D:3D:D5:9D:D6:88:32:CC:E1:9A:E3:72:01:CB:86 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/854367ff-45b7-4925-99a1-97b01f4fabe8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.166.0/23 Signature Algorithm: sha256WithRSAEncryption 50:b9:94:84:2d:da:12:10:03:1a:06:25:01:b7:8b:50:d5:44: 4b:33:83:21:1c:6b:cf:0f:c5:a9:d3:a8:68:93:95:8c:04:38: b1:4b:de:13:18:57:3b:9a:b7:22:9e:37:c9:37:fd:82:1b:13: 2b:12:b7:75:a9:71:cb:8c:f2:54:2a:57:c5:4a:e9:15:20:93: e4:df:67:35:a9:33:de:52:e5:da:c9:3b:ba:ce:3a:87:54:b5: f9:e5:dd:2f:fb:c3:25:61:88:25:ab:10:7e:69:ac:82:18:ad: ba:16:4d:b8:2e:52:ad:89:25:22:01:95:cc:e6:ba:c7:3b:90: 83:49:13:38:9e:c6:a5:eb:9a:bf:70:96:a7:cc:7f:c4:0c:3c: af:0d:0a:1f:18:2c:19:30:58:37:91:66:d6:c5:7e:88:61:a3: f6:ea:c2:07:00:28:37:a8:1a:10:f1:11:2d:74:5b:aa:e8:c8: 7e:89:c4:f7:82:c3:73:78:aa:c2:fe:2c:54:d0:e4:4d:36:d2: 9b:09:ea:31:06:f5:94:81:ee:62:2d:b3:6e:7b:73:7e:59:00: e6:f5:cc:14:37:9e:ca:c5:68:1f:e0:5b:cc:fe:67:0b:15:a6: 1c:2f:b8:82:25:28:9a:92:d2:db:a8:a1:fe:28:5f:96:4a:48: 41:9f:b1:4f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGWaXUTxaxWajPzufu+JJgTnkZzswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTMwMDAwMDA2WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZGYzMThmZDU1YWMyZDBiNzRmMWJmODQzYjI2NzNlMTg1 YzNiNzI5ZGYzYmM3ZDhlZGE2NTVjMTZhNGEwMDdjMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDR5Ob3iHieFThg7fXfzyFMkif2c1rKbv7i8thOBeKejDGl GF0tN+GUEvts39HMypDSIm+NopFMm9m7J3NQJ9OlIZeBcVELVV4l5SR0r5upywyZ 1bw8nDBJmXBGnvSeL+uDnSX74IkdwNks3QOOQbVFE+ZMYjxnRRrhlucpXkg4zqO2 FY65Ju/lhk5ZyKG0oKxt7USrzJrBm3jP9RMQs+QbMemffJXCMklhvI4/sAwZi2+n ddCJbylsUd4mdhpxeBzT5hPx5nUPSragh8oDf2pzOvt5L48z4ASv5GIBHl9vJi2y MxezGp1MUK3RLkfUuLlxWzINJmyea1pxMmhcwnVHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYF4MvFgNPdWd1ogyzOGa43IBy4YwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzg1NDM2N2ZmLTQ1YjctNDkyNS05OWExLTk3YjAxZjRmYWJlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHY3aYwDQYJKoZIhvcNAQELBQADggEBAFC5lIQt2hIQAxoGJQG3i1DVREsz gyEca88PxanTqGiTlYwEOLFL3hMYVzuatyKeN8k3/YIbEysSt3WpccuM8lQqV8VK 6RUgk+TfZzWpM95S5drJO7rOOodUtfnl3S/7wyVhiCWrEH5prIIYrboWTbguUq2J JSIBlczmusc7kINJEziexqXrmr9wlqfMf8QMPK8NCh8YLBkwWDeRZtbFfohho/bq wgcAKDeoGhDxES10W6royH6JxPeCw3N4qsL+LFTQ5E020psJ6jEG9ZSB7mIts257 c35ZAOb1zBQ3nsrFaB/gW8z+ZwsVphwvuIIlKJqS0tuoof4oX5ZKSEGfsU8= -----END CERTIFICATE-----Generated at Wed Jun 4 11:09:36 2025 by rpki-client